CVE-2026-33760 langflow-ai CVE debrief

Who should care

Langflow users, administrators, and security teams should be aware of this vulnerability and take immediate action to update to version 1.9.0 or apply necessary mitigations. Authenticated users with access to the /api/v1/monitor router are potentially impacted.

Technical summary

The /api/v1/monitor router in Langflow exposes 7 endpoints that perform read, write, and delete operations on user-owned resources without verifying ownership. This allows unauthorized access to messages, sessions, build artifacts, and LLM transaction logs. The vulnerability is caused by inconsistent application of ownership checks, as demonstrated by a correctly implemented endpoint in the same source file.

Defensive priority

High priority should be given to updating Langflow to version 1.9.0. In the meantime, restrict access to the /api/v1/monitor router and implement additional monitoring to detect potential exploitation attempts.

Recommended defensive actions

• Update Langflow to version 1.9.0 or later
• Restrict access to the /api/v1/monitor router
• Implement additional monitoring to detect potential exploitation attempts
• Review and update access controls for user-owned resources
• Consider applying compensating controls to mitigate the vulnerability

Evidence notes

The CVE record and NVD detail provide official information about the vulnerability. The source item URL provides additional context from the NVD database. The mitigation or vendor reference provides guidance on fixing the issue.

Official resources